• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 296
  • Last Modified:

New user logon problem

I have just created a user in Win2003 AD. This user can logon to some servers of our, however it cannot logon to others. This happened before but I thought it was not a serious problem. Now I am having this problem almost with every user I create. Please help...
0
burcayaroglu
Asked:
burcayaroglu
  • 3
  • 3
  • 2
  • +1
1 Solution
 
Cherukuri30Commented:
how many servers you have? are they in the same subnet and member servers of your domain?
0
 
Jay_Jay70Commented:
Hi burcayaroglu,

have you checked the local policy of the affected machine to make sure that a certain group isnt blocked or that a certain group isnt in allowed to log on locally

Cheers!
0
 
ADExpertCommented:
What is the error that you are getting while trying to logon ?

How many DCs do you have?

What is client O/S ?

Copy the IPCONFIG /ALL output of client as well as of all the DCs.

ADExpert
0
Get your Conversational Ransomware Defense e‑book

This e-book gives you an insight into the ransomware threat and reviews the fundamentals of top-notch ransomware preparedness and recovery. To help you protect yourself and your organization. The initial infection may be inevitable, so the best protection is to be fully prepared.

 
burcayarogluAuthor Commented:
It gives the same error when you try to logon with wrong password or non-existed account

We have 1PDC 3 DC's All windows server 2003

All the computers are on the same subnet

PDC
IP: 192.168.3.100  255.255.240.0   gw:192.168.3.254
DNS: 192.168.3.100- 192.168.3.101

DC1  
IP: 192.168.3.101  255.255.240.0   gw:192.168.3.254
DNS: 192.168.3.100- 192.168.3.101

DC2  
IP: 192.168.3.6  255.255.240.0   gw:192.168.3.254
DNS: 192.168.3.100- 192.168.3.101

DC3  
IP: 192.168.3.2  255.255.240.0   gw:192.168.3.254
DNS: 192.168.3.100- 192.168.3.101

Client
IP: 192.168.3.222  255.255.240.0   gw:192.168.3.254
DNS: 192.168.3.100- 192.168.3.101


I just realised that the computer was not listed in the AD users and comp. I created it manually but it did not work either. The strange thing is the users I created a week ago can logon to the system. However the users that I created since yesterday do not work.
0
 
burcayarogluAuthor Commented:
I also receive event id 1058 userenv on the client when I try gpupdate /force
0
 
ADExpertCommented:
Hi

Delete the computer account which you've manually created.

Old users are able to login because they've got cached profiles on that system.

Follow the following article to join computer to domain :

http://www.petri.co.il/joining_a_domain_in_windows_xp_pro.htm

http://support.microsoft.com/?kbid=295017

After you've joined the computer to the domain. Then, you should see an account for the same client computer in AD users & computers & new users should be able to login just fine.

ADExpert
0
 
Jay_Jay70Commented:
i would run the network ID wizard myself, establishes connections with AD a lot better from my experience
0
 
burcayarogluAuthor Commented:
The system is not XP it is  windows server 2003 (terminal Server). Does it matter ?
0
 
Jay_Jay70Commented:
hmm not sure if the wizard is available with 03   if it is then go for it
0

Featured Post

Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

  • 3
  • 3
  • 2
  • +1
Tackle projects and never again get stuck behind a technical roadblock.
Join Now